Ad blocker detected: Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by disabling your ad blocker on our website.
One more question to the group........just set up a Win2k3 server to send all its logs to cacti...I see them>> AWESOME. in the list they show up as that machines IP..is there a way to get its DNS name??? My cacti server has DNS setup and I can ping that server by its name?? Any suggestions?
I think it may depend on the device or its syslog program. I have many different types of devices (APs, firewalls, routers, computers) syslogging and some show their name and some show their IP address for the host.
It would be nice to use the name, maybe someone knows?
###########################################################################################
# May 05, 2006 Added by cdukes for php-syslog-ng // ref: http://gentoo-wiki.com/HOWTO_setup_PHP-Syslog-NG
# pipe messages to /var/log/mysql.pipe to be processed by mysql
###########################################################################################
options {
long_hostnames(off);
# doesn't actually help on Solaris, log(3) truncates at 1024 chars
log_msg_size(8192);
# buffer just a little for performance
sync(1);
# memory is cheap, buffer messages unable to write (like to loghost)
log_fifo_size(16384);
# Hosts we don't want syslog from
#bad_hostname("^(ctld.|cmd|tmd|last)$");
# The time to wait before a dead connection is reestablished (seconds)
time_reopen(10);
#Use DNS so that our good names are used, not hostnames
use_dns(yes);
dns_cache(yes);
#Use the whole DNS name
use_fqdn(yes);
keep_hostname(yes);
chain_hostnames(no);
#Read permission for everyone
perm(0644);
# The default action of syslog-ng 1.6.0 is to log a STATS line
# to the file every 10 minutes. That's pretty ugly after a while.
# Change it to every 12 hours so you get a nice daily update of
# how many messages syslog-ng missed (0).
stats(43200);
};
destination d_mysql {
pipe("/var/log/mysql.pipe"
template("INSERT INTO logs
(host, facility, priority, level, tag, datetime, program, msg)
VALUES ( '$HOST', '$FACILITY', '$PRIORITY', '$LEVEL', '$TAG', '$YEAR-$MONTH-$DAY $HOUR:$MIN:$SEC
', '$PROGRAM', '$MSG' );\n") template-escape(yes));
};
log {
source(s_all);
destination(d_mysql);
};
###########################################################################################
# May 05, 2006 Added above by cdukes for php-syslog-ng enhancements
###########################################################################################
nahun wrote:I think it may depend on the device or its syslog program. I have many different types of devices (APs, firewalls, routers, computers) syslogging and some show their name and some show their IP address for the host.
It would be nice to use the name, maybe someone knows?
You are the man cdukes......works like a charm.
I havent tested with other types of devices , just a few servers so far. I get the fqdn now....will turn that back off...dont need it really. Now that you told me about those settings I do remember seeing them. Thanks again.
spoonman wrote:You are the man cdukes......works like a charm.
I havent tested with other types of devices , just a few servers so far. I get the fqdn now....will turn that back off...dont need it really. Now that you told me about those settings I do remember seeing them. Thanks again.
hi
according to the included help and the the help on cactiusers, i put all files into the <cacti>/plugin/haloe/ folder. i made necessary changes to the corresponding config files, created a new table for my rsyslog (which logs successfully) added $plugin to include/config.php and so on.
but i'm not able to integrate the 0.4 plugin into cacti. where do i have to put the files exactly?
If you know the syslogs are getting into the database, but there just isn't a tab showing, maybe check your user permissions in Cacti and make sure your user can see the syslog stuff. I forget that all the time.
To get other servers or switches to appear you have to point each one to your cacti server...or tell it to send all its logs to it. They will appear once you do that. The only thing I've tested so far is a Win2k3 server sending event/application/secutiry logs to it. You have to get another program to run on each Win server to do that. I downloaded a program call NTSyslog for free and installed it and started sending logs to cacti..they appeared pretty quick. Google that app, its nice.......think is was a sourceforge app???
